IT Security News Daily Summary 2025-09-11

210 posts were published in the last hour

• 21:33 : I tried the Apple Watch Series 11, and it’s so close to making my Oura Ring obsolete
• 21:32 : Your Gmail just got a useful new tool for tracking online purchases
• 21:4 : Apple iPhone 17 event recap: Reactions to iPhone Air, Apple Watches, AirPods Pro 3, more
• 21:3 : Akira Ransomware exploits year-old SonicWall flaw with multiple vectors
• 20:34 : iPhone Air vs. iPhone 17 Pro? How to decide between Apple’s two best models
• 20:34 : Malicious Chrome Add-On Steals Facebook, Instagram Ad Credentials
• 20:33 : How China’s Propaganda and Surveillance Systems Really Operate
• 20:33 : Business speed, lasting security: Conversation with Amazon’s Senior Software Development Engineer Naman Jain
• 20:33 : AI Gone Rogue – What Anthropic’s Report Means for Cybersecurity
• 20:6 : The AirPods Pro 3’s heart rate sensor won’t replace my Apple Watch – here’s why
• 20:6 : Your appliances may be quietly draining electricity – this gadget stops that
• 20:5 : 3 reasons why I’m skipping the iPhone 17 Pro and buying this model instead
• 20:5 : IT Security News Hourly Summary 2025-09-11 21h : 11 posts
• 20:4 : 5 new AI-powered features that flew under the radar at Apple’s launch event
• 20:4 : Amazon October Prime Day: Everything you need to know about Prime Big Deal Days
• 20:3 : Hijacker helper VoidProxy boosts Google, Microsoft accounts on demand
• 19:35 : How the Infamous APT-1 Report Exposing China’s PLA Hackers Came to Be
• 19:35 : Top 10 Best Cloud Penetration Testing Companies in 2025
• 19:35 : Securing LLM Applications: Beyond the New OWASP LLM Top 10
• 19:34 : Your Android phone’s most powerful security feature is hidden and off by default – turn it on now
• 19:34 : 5 Meta Ray-Ban upgrades that have me truly hyped for September 17
• 19:34 : Stability’s new AI audio tool creates custom sound for brands – how it works
• 19:33 : Palo Alto Exposes Passwords in Plain Text
• 19:33 : Your Smart Devices Just Fueled a Record-Breaking DDoS Attack
• 19:33 : Daikin Security Gateway
• 19:33 : CISA Adds One Known Exploited Vulnerability to Catalog
• 19:32 : New VMScape Spectre-BTI Attack Exploits Isolation Gaps in AMD and Intel CPUs
• 19:32 : PhishKit Evasion Tactics: What You Need to Pay Attention to Right Now
• 18:18 : Beaches and breaches
• 18:17 : Link11 Reports 225% more DDoS attacks in H1 2025 with new tactics against infrastructure
• 18:16 : The best Apple TV VPNs of 2025: Expert tested and reviewed
• 18:14 : Live Translation isn’t just for AirPods Pro 3 – check if yours are compatible
• 18:12 : The Apple Watch is so close to replacing my Oura Ring – it just needs this feature
• 18:10 : After coding catastrophe, Replit says its new AI agent checks its own work – here’s how to try it
• 18:7 : Bulletproof Host Stark Industries Evades EU Sanctions
• 18:6 : Vanta introduces Vanta AI Agent for risk management
• 18:6 : Check Point Software Named Among World’s Best Companies 2025 by TIME and Statista
• 18:5 : The Future of Human Risk Management: The Zensory and Brigantia Partnership A Year On
• 18:5 : Hackers Target Brazilian Payments Provider in Attempted $130 Million Theft
• 17:34 : Senator Urges FTC Probe Into Microsoft After Ascension Ransomware Attack
• 17:34 : DoorDash scams are serving up trouble
• 17:34 : I spent $20 on Codex and got 24 days of coding work done in 6 hours – but there’s a big catch
• 17:33 : How to install iPadOS 26 right now (and which iPad models support it)
• 17:33 : Positive vs. negative security: Choosing an AppSec model
• 17:33 : Siemens Apogee PXC and Talon TC Devices
• 17:33 : Siemens User Management Component (UMC)
• 17:32 : AI-powered penetration tool, an attacker’s dream, downloaded 10K times in 2 months
• 17:5 : IT Security News Hourly Summary 2025-09-11 18h : 20 posts
• 16:38 : The iPhone 17 lineup arrived with higher price tags – are tariffs to blame?
• 16:37 : Apple iPhone 17 Pro vs. iPhone 16 Pro: I compared both models to see if it’s worth upgrading
• 16:37 : Scientists build quantum computers that snap together like LEGO bricks
• 16:36 : New EggStreme Malware With Fileless Capabilities Leverages DLL Sideloading to Execute Payloads
• 16:36 : Kenyan Filmmakers Installed With FlexiSPY Spyware That Monitors Messages and Social Media
• 16:35 : Lessons from Salesforce/Salesloft Drift Data Breaches – Detailed Case Study
• 16:35 : L7 DDoS Botnet Hijacked 5.76M Devices to Launch Massive Attacks
• 16:34 : Threat Actors Leveraging Open-Source AdaptixC2 in Real-World Attacks
• 16:33 : Senator Wyden Urges FTC to Probe Microsoft for Ransomware-Linked Cybersecurity Negligence
• 16:33 : Google Pixel 10 Adds C2PA Support to Verify AI-Generated Media Authenticity
• 16:33 : CISA Launches Roadmap for the CVE Program
• 16:7 : Wordfence Intelligence Weekly WordPress Vulnerability Report (September 1, 2025 to September 7, 2025)
• 16:7 : New Google AppSheet Phishing Scam Deliver Fake Trademark Notices
• 16:6 : 4 ways machines will automate your business – and it’s no hype, says Gartner
• 16:6 : OpenAI’s fix for hallucinations is simpler than you think
• 16:6 : Anti-DDoS outfit walloped by record packet flood
• 16:5 : Siemens SIMATIC Virtualization as a Service (SIVaaS)
• 16:5 : Schneider Electric Modicon M340, BMXNOE0100, and BMXNOE0110
• 16:5 : Siemens SIMOTION Tools
• 16:4 : Siemens SINAMICS Drives
• 16:4 : Siemens Industrial Edge Management OS (IEM-OS)
• 16:4 : France says Apple notified victims of new spyware attacks
• 16:4 : Microsoft’s ‘Gross Cybersecurity Negligence Threatens National Security’
• 16:4 : Fileless Malware Deploys Advanced RAT via Legitimate Tools
• 15:37 : Kids in the UK are hacking their own schools for dares and notoriety
• 15:36 : 12 Ways to Protect Your Business from Hackers During Remote Work
• 15:35 : Spectre haunts CPUs again: VMSCAPE vulnerability leaks cloud secrets
• 15:35 : Webinar Today: Breaking AI – Inside the Art of LLM Pen Testing
• 15:34 : Why Traditional Threat Feeds Miss the Mark: The Role of Procedural Intelligence
• 15:34 : Why Cyber Resilience Starts With People, Not Just Tools
• 15:33 : From Alert Fatigue to Proactive Defense: The Case for AI-Driven Prevention
• 15:33 : UK cyber leader calls for shift in focus toward continuity of critical services
• 15:9 : The most durable USB-C cable I’ve ever tested survived my 50-pound weight test
• 15:9 : I bought this $15 cordless screwdriver just for fun – then it totally impressed me
• 15:8 : Researchers built a wireless heart rate monitor with a Raspberry Pi and Wi-Fi – here’s how
• 15:8 : Your Android phone just got 3 useful features for free – including an audio upgrade
• 15:8 : My new favorite note-taking app for MacOS and Linux checks this crucial box – and it’s free
• 15:7 : Google fixes critical Chrome flaw, researcher earns $43K
• 15:5 : Cisco Patches High-Severity IOS XR Vulnerabilities
• 15:4 : Akira ransomware affiliates continue breaching organizations via SonicWall firewalls
• 15:4 : Wyden Urges FTC Investigation Over Ascension Ransomware Hack
• 14:34 : How the Infamous APT 1 Report Exposing China’s PLA Hackers Came to Be
• 14:34 : UK Train Operator LNER Passengers Data Accessed In Cyber Attack
• 14:34 : CoreDNS Vulnerability Let Attackers Pin DNS Cache And Deny Service Updates
• 14:33 : PoisonSeed Threat Actor Registering New Domains in Attempt to Compromise Enterprise Credentials
• 14:33 : Cornwell Quality Tools Data Breach – 100,000 Users Data Was Compromised
• 14:33 : kkRAT Employs Network Communication Protocol to Steal Clipboard Contents
• 14:33 : F5 moves to secure generative AI with CalypsoAI acquisition
• 14:7 : Threat Actors Leveraging Open-Source AdaptixC2 in Real-world Attacks
• 14:7 : Global Cyber Threats August 2025: Agriculture in the Crosshairs
• 14:6 : Apple’s Big Bet to Eliminate the iPhone’s Most Targeted Vulnerabilities
• 14:6 : UK Train Operator LNER Warns Customers of Data Breach
• 14:5 : Cybercriminals Weaponize AI for Large-Scale Extortion and Ransomware Attacks
• 14:5 : AdaptixC2 Raises Security Alarms Amid Active Use in Cyber Incidents
• 14:5 : Jaguar Land Rover Cyberattack Breaches Data and Halts Global Production
• 14:5 : IT Security News Hourly Summary 2025-09-11 15h : 14 posts
• 14:4 : Android’s App Freedom Shrinks As Google Tightens Rules
• 14:4 : Box Shield Pro monitors AI workflows and sensitive data
• 14:3 : N-able’s Cat-MIP standardizes terminology for AI automation
• 13:40 : UK Rail Operator LNER Confirms Cyber Attack Exposing Passenger Data
• 13:39 : Angular SSR Vulnerability Allows Attackers to Access Sensitive Data
• 13:37 : OWASP Top 10 Non-Human Identity Risks for 2025: What You Need to Know
• 13:35 : Anthropic’s Claude AI Weaponized in $500K Cybercrime Spree
• 13:34 : Senator blasts Microsoft for ‘dangerous, insecure software’ that helped pwn US hospitals
• 13:34 : Critical Chrome Vulnerability Earns Researcher $43,000
• 13:33 : Permiso Uncovers Unicode Technique to Compromise Microsoft Exchange Rules
• 13:33 : How the retail sector teams up to defend against cybercrime
• 13:8 : Massive L7 DDoS Botnet Exploits 5.76M Hijacked Devices for Record Attacks
• 13:7 : Hackers Booked Very Little Profit with Widespread npm Supply Chain Attack
• 13:7 : Malicious Chrome Extension Attacking Users to Steal Meta Login Credentials
• 13:6 : New Attack Technique That Enables Attackers To Exfiltrate Git Credentials In Argocd
• 13:6 : Boost Operational Resilience: Proactive Security with CORA Best Practices
• 13:5 : Fake Bureau of Motor Vehicles texts are after your personal and banking details
• 13:5 : When AI chatbots leak and how it happens
• 13:4 : Wyden Asks FTC to Investigate Microsoft’s ‘Gross Cybersecurity Negligence’
• 13:4 : Chinese APT Actor Compromises Military Firm with Novel Fileless Malware Toolset
• 12:42 : Attackers Abuse Kubernetes DNS to Extract Git Credentials from ArgoCD
• 12:42 : Kenyan Filmmakers Targeted with FlexiSPY Spyware Tracking Messages and Social Media
• 12:42 : CoreDNS Vulnerability Allows Attackers to Poison DNS Cache and Block Updates
• 12:41 : 100,000 Impacted by Cornwell Quality Tools Data Breach
• 12:40 : UAE’s K2 Think AI Jailbroken Through Its Own Transparency Features
• 12:38 : Akira Ransomware Attacks Fuel Uptick in Exploitation of SonicWall Flaw
• 12:36 : The True Value of Single Sign-On (SSO): A Comprehensive Guide for Technical Professionals
• 12:34 : Secure by Design, Visible by Choice: Why Authentication Page Optimization Matters for B2B SaaS
• 12:34 : Top 10 Essential DevOps Tools to Use in 2025 and Beyond
• 12:33 : Top Identity and Access Management (IAM) Solutions for 2025
• 12:5 : Cyber Attack Exposes LNER Train Passengers’ Personal Data
• 12:4 : EggStreme Malware Emerges With Fileless Techniques and DLL Sideloading Payloads
• 12:3 : Kosovo man pleads guilty to running online criminal marketplace BlackDB
• 11:35 : kkRAT Exploits Network Protocols to Exfiltrate Clipboard Data
• 11:34 : Palo Alto Networks User-ID Agent Flaw Leaks Passwords in Cleartext
• 11:34 : A Practical Guide to API Threat Analytics in Cloud Platforms
• 11:34 : Brussels faces privacy crossroads over encryption backdoors
• 11:33 : Email Security Startup AegisAI Launches With $13 Million in Funding
• 11:33 : AI Emerges as the Hope—and Risk—for Overloaded SOCs
• 11:32 : Senator Urges FTC Probe of Microsoft Over Security Failures
• 11:5 : IT Security News Hourly Summary 2025-09-11 12h : 9 posts
• 11:4 : Why File Integrity Monitoring (FIM) Is a Must for Compliance — And How to Pick the Right Solution
• 11:4 : ‘Astronaut-in-distress’ romance scammer steals money from elderly woman
• 11:3 : Default Cursor setting can be exploited to run malicious code on developers’ machines
• 10:34 : ChillyHell macOS Malware Resurfaces, Using Google.com as a Decoy
• 10:34 : NVIDIA NVDebug Tool Vulnerability Let Attackers Escalate Privileges
• 10:34 : Attacker steals customer data from Brit rail operator LNER during break-in at supplier
• 10:33 : Remote CarPlay Hack Puts Drivers at Risk of Distraction and Surveillance
• 10:33 : France: Three Regional Healthcare Agencies Targeted by Cyber-Attacks
• 10:3 : PoisonSeed Threat Actor Strengthens Credential Theft Operations with New Domains
• 10:3 : Attackers abuse ConnectWise ScreenConnect to drop AsyncRAT
• 10:3 : Zero Outages, Full Visibility: How PacificSource Automated SSL TLS Certificate Lifecycle Management
• 10:3 : Cracking the Boardroom Code: Helping CISOs Speak the Language of Business
• 10:3 : Fake Madgicx Plus and SocialMetrics Extensions Are Hijacking Meta Business Accounts
• 9:36 : ZynorRAT Exploits Windows and Linux Systems to Gain Remote Access
• 9:36 : Experts scrutinized Ofcom’s Online Safety Act governance. They’re concerned
• 9:36 : Senator Calls for FTC Investigation into Microsoft’s Use of Outdated RC4 Encryption and Kerberoasting Vulnerabilities
• 9:36 : Ukrainian Ransomware Fugitive Added to Europe’s Most Wanted
• 9:4 : Wyden Urges FTC to Investigate Microsoft Over Weak RC4 Encryption Enabling Kerberoasting
• 9:4 : NVIDIA NVDebug Tool Vulnerability Lets Attackers Gain Elevated System Access
• 9:4 : BAE Systems surfaces autonomous submarine for military use
• 8:37 : Oracle Stock Jumps On AI Cloud Optimism
• 8:36 : Facebook, TikTok Challenge Forces DSA Legal Shift
• 8:36 : Cursor AI Code Editor RCE Flaw Allows Malicious Code to Autorun on Machines
• 8:36 : 1.5 Billion Packets Per Second DDoS Attack Detected with FastNetMon
• 8:36 : 2 Doctors in Hong Kong Arrested for Leaking Patient Data
• 8:35 : Cryptoexchange SwissBorg Suffers $41 Million Theft, Will Reimburse Users
• 8:33 : LNER Reveals Supply Chain Attack Compromised Customer Information
• 8:6 : 1.5 billion packets per second DDoS attack detected with FastNetMon
• 8:6 : Jaguar Land Rover discloses a data breach after recent cyberattack
• 8:5 : ACSC Warns Of Sonicwall Access Control Vulnerability Actively Exploited In Attacks
• 8:5 : DDoS Mitigation Provider targeted In 1.5 Gpps 1.5 Billion Packets per Second DDoS Attack
• 8:5 : Three-Prong Ghost Hacker Scam Targets Seniors, Others
• 8:5 : IT Security News Hourly Summary 2025-09-11 09h : 6 posts
• 7:33 : Jaguar Land Rover Data Breached In Hack
• 7:33 : Tesla’s China Sales, Share Decline In August
• 7:33 : ChillyHell macOS Malware: Three Methods of Compromise and Persistence
• 7:33 : DDoS Mitigation Provider Hit by Massive 1.5 Billion Packets Per Second Attack
• 7:33 : Cynomi simplifies vendor risk management
• 7:33 : npm update, Cursor Autorun flaw details, Microsoft probe over Ascension hack?
• 7:3 : Hush Security emerges from stealth to replace legacy vaults with secretless access
• 6:34 : Key Operators of LockerGoga, MegaCortex, and Nefilim Ransomware Gangs Arrested
• 6:34 : ACSC Warns of Actively Exploited SonicWall Access Control Vulnerability
• 6:34 : Chrome Extension Scam Exposed: Hackers Stealing Meta Accounts
• 6:33 : When typing becomes tracking: Study reveals widespread silent keystroke interception
• 6:33 : AsyncRAT Exploits ConnectWise ScreenConnect to Steal Credentials and Crypto
• 6:3 : Hackers Reap Minimal Gains from Massive npm Supply Chain Breach
• 5:36 : Reflected XSS Flaw Enables Attackers to Evade Amazon CloudFront Protection Using Safari
• 5:36 : Dell PowerProtect Data Manager Flaw Allows System Compromise by Attackers
• 5:35 : NASA bars Chinese citizens from its facilities, networks, even Zoom calls
• 5:35 : Authorities Arrested Admins Of “LockerGoga,” “MegaCortex,” And “Nefilim” Ransomware Gangs
• 5:34 : Why organizations need a new approach to risk management
• 5:33 : The state of DMARC adoption: What 10M domains reveal
• 5:33 : AI is everywhere, but scaling it is another story
• 5:32 : How attackers weaponize communications networks
• 5:5 : IT Security News Hourly Summary 2025-09-11 06h : 1 posts
• 4:2 : Beijing went to ‘EggStreme’ lengths to attack Philippines military, researchers say
• 2:5 : IT Security News Hourly Summary 2025-09-11 03h : 6 posts
• 2:4 : ISC Stormcast For Thursday, September 11th, 2025 https://isc.sans.edu/podcastdetail/9608, (Thu, Sep 11th)
• 1:3 : T-Mobile will give you a free iPhone 17 Pro right now – how the preorder deal works
• 1:3 : iPhone 17 Pro Max vs. Google Pixel 10 Pro XL: I compared both phones, and it’s a close one
• 1:2 : Deception Technology: How Fidelis Security Helps Enterprises Turn the Tables on Attackers
• 0:33 : DShield SIEM Docker Updates, (Wed, Sep 10th)
• 0:32 : Apple Watch Series 11 vs. Samsung Galaxy Watch 8: I’ve tested both, and here’s the winner
• 0:32 : iPhone Air vs. iPhone 17 Pro Max: I compared Apple’s two best models, and I’d buy this one
• 0:2 : The Future of Defensible Security: From Reactive Playbooks to Attack-Pattern-Aware Autonomous Response